diff options
| author | Michael Shuler <michael@pbandjelly.org> | 2013-08-30 09:25:52 -0500 |
|---|---|---|
| committer | Michael Shuler <michael@pbandjelly.org> | 2013-08-30 09:25:52 -0500 |
| commit | 072a27bc33e7f7f8235e68348b208a9afc35ce6d (patch) | |
| tree | 844f25b8d6d6dce8212bc9b1c6375578dcc33d49 | |
| parent | 3fa6c107c686b836e4a9d93d0855470c8095d743 (diff) | |
| download | ca-certificates-072a27bc33e7f7f8235e68348b208a9afc35ce6d.tar.gz | |
Remove real dummy cert, add non-real dummy, update README.Debian
3 files changed, 10 insertions, 22 deletions
diff --git a/examples/ca-certificates-local/debian/README.Debian b/examples/ca-certificates-local/debian/README.Debian index 7221fa7..a4cc55a 100644 --- a/examples/ca-certificates-local/debian/README.Debian +++ b/examples/ca-certificates-local/debian/README.Debian @@ -8,19 +8,18 @@ package will be implicitly trusted. This is an example stub source package that includes a dummy CA certificate in the local/ directory. Remove the dummy certificate, copy your trusted local root CA (in PEM format with the filename ending in -.crt) to the local/ directory, edit files in the debian/ directory as +".crt") to the local/ directory, edit files in the debian/ directory as desired, and build your custom package. ---------------------------- Steps to build your custom local root CA package from this example: -- First, check that your local root CA is in PEM file format, the - filename ends in .crt, and that it is properly usable by openssl. This - example uses the included dummy CA certificate. Check that your local - root CA certificate produces similar output: +- First, check that your local root CA is in PEM-encoded format, the + filename ends in ".crt", and that it is properly usable by openssl; + for example: - $ openssl x509 -text -in local/Deep_Thought_Dummy_Root_CA.crt + $ openssl x509 -text -in Deep_Thought_Dummy_Root_CA.crt Certificate: Data: Version: 3 (0x2) @@ -87,8 +86,8 @@ Steps to build your custom local root CA package from this example: - Next, remove the dummy CA certificate, copy your local root CA certificate(s) to the local/ directory, and build the package: - $ rm local/Deep_Thought_Dummy_Root_CA.crt - $ cp /path/to/Your_Local_Root_CA.crt local/ + $ rm local/Local_Root_CA.crt + $ cp /path/to/YourOrg_Root_CA.crt local/ $ dpkg-buildpackage -b - Install the package (or copy it to your local apt repository for diff --git a/examples/ca-certificates-local/local/Deep_Thought_Dummy_Root_CA.crt b/examples/ca-certificates-local/local/Deep_Thought_Dummy_Root_CA.crt deleted file mode 100644 index 2a46175..0000000 --- a/examples/ca-certificates-local/local/Deep_Thought_Dummy_Root_CA.crt +++ /dev/null @@ -1,14 +0,0 @@ ------BEGIN CERTIFICATE----- -MIICEjCCAXugAwIBAgIBQjANBgkqhkiG9w0BAQUFADAlMSMwIQYDVQQDExpEZWVw -IFRob3VnaHQgRHVtbXkgUm9vdCBDQTAeFw0xMzA4MjkwMDAwMDBaFw00MjA4Mjgy -MzU5NTlaMCUxIzAhBgNVBAMTGkRlZXAgVGhvdWdodCBEdW1teSBSb290IENBMIGf -MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCi4wCw0vqSVwKXXoDgGmjuL9Ad0lf6 -uFKNUIKnLPu3+iOUorQgUqmqwSj5KF5fEOGcsBDs9IIPZ/nx9y94cELzh8C4x8GA -6Ch02RVmxRc7+VYD+ZEAo3J19lPZHiVIguVaDkc1bwg3IQRGPv/+BKdwwLUZzJEk -rsVu3FB/PzS4KQIDAQABo1IwUDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTD -/9tJ4oqkJmIZdPBmQeFf90s/pzALBgNVHQ8EBAMCAQYwEQYJYIZIAYb4QgEBBAQD -AgAHMA0GCSqGSIb3DQEBBQUAA4GBAB8ySfJ/7YBiLkm3zoS5wcUa9llueA5wExBx -gCM2yGw0XwPokwZRXZpPi/wYzgbB9f/4gqWIDS6XxsVXssUIChEXdCGcaP3jodN1 -h8Uy+bPWiQNundRZRVW7FDEFz2MDiVdCwQSliSfslzDz3snL0PKvi0IrLTFbu7hG -yTxhjDIt ------END CERTIFICATE----- diff --git a/examples/ca-certificates-local/local/Local_Root_CA.crt b/examples/ca-certificates-local/local/Local_Root_CA.crt new file mode 100644 index 0000000..283ad2e --- /dev/null +++ b/examples/ca-certificates-local/local/Local_Root_CA.crt @@ -0,0 +1,3 @@ +-----BEGIN CERTIFICATE----- +Dummy Root CA file; replace it with the PEM-encoded root certificate +-----END CERTIFICATE----- |